package com.lanou.bookstore.filter;

import com.lanou.bookstore.user.domain.User;

import javax.servlet.*;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

@WebFilter("/adminCategory")
public class AdminCategoryFilter implements Filter {
    @Override
    public void destroy() {
    }

    @Override
    public void doFilter(ServletRequest req, ServletResponse resp, FilterChain chain) throws ServletException, IOException {
        HttpServletRequest request = (HttpServletRequest) req;
        HttpServletResponse response = (HttpServletResponse) resp;
        User user = (User) request.getSession().getAttribute("user");
        if ("admin".equals(user.getUsername()) && user != null) {
            chain.doFilter(req, resp);
        } else {
            request.getSession().removeAttribute("user");
            request.setAttribute("msg", "您的权限不足，请重新登录");
            request.getRequestDispatcher("/jsps/user/login.jsp").forward(request, response);
        }
    }

    @Override
    public void init(FilterConfig config) throws ServletException {

    }

}
